Integrated Infrastructure for Secure and Efficient Long-Term Data Management

用于安全、高效的长期数据管理的集成基础设施

• 批准号: 0621462
• 负责人: Andrew Odlyzko
• 金额: --
• 依托单位: University of Minnesota-Twin Cities
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2006
• 资助国家: 美国
• 起止时间: 2006-09-15 至 2010-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0621462&HistoricalAwards=false
• 关键词: Integrated; Infrastructure; Secure; Efficient; Long

To achieve the level of security and privacy for enterprise data that is increasingly required by laws or industry standards, data should be encrypted both at rest and in transit. Yet, numerous recent privacy breaches through loss or theft of archival tapes or notebook computers show that today most data, even of extremely sensitive nature, is not encrypted. The main reason is that we do not have a flexible system for key management. Loss of the encryption key (through lapses of memory, death of staff members, or destruction of stored copies) would mean that the owner of the data would effectively lose it completely, with potentially catastrophic consequences. This project will develop a high-performance long-term data management system that will ensure the necessary levels of security throughout the lifecycle of a data set. The goal is a hierarchical cluster-based archival storage solution that will provide: (i) transparent backup, restore, and data access operations that will allow individual application programs and business entities to securely and efficiently archive data for decades; (ii) high-performance data access in a cluster computing environment; and (iii) innovative techniques for efficiently ensuring long-term data security and accessibility, including long-term key management. The solution will be suitable for heterogeneous computing environments, including the extremely high-throughput ones of the high-performance computing (HPC) community.

为了达到法律或行业标准日益要求的企业数据的安全和隐私级别，应该对静态和传输中的数据进行加密。然而，最近许多因丢失或被盗的档案磁带或笔记本电脑而导致的隐私泄露表明，今天大多数数据，即使是极其敏感的数据，也没有被加密。主要原因是我们没有一个灵活的密钥管理系统。加密密钥的丢失（由于内存缺失、工作人员死亡或存储副本的破坏）将意味着数据的所有者实际上会完全丢失数据，并可能带来灾难性的后果。该项目将开发一个高性能的长期数据管理系统，该系统将确保数据集在整个生命周期内的必要安全级别。目标是一个分层的基于集群的归档存储解决方案，它将提供：(i)透明的备份、恢复和数据访问操作，这将允许单个应用程序和业务实体在数十年内安全有效地归档数据；（ii）集群计算环境下的高性能数据访问；（iii）有效确保长期数据安全和可访问性的创新技术，包括长期密钥管理。该解决方案将适用于异构计算环境，包括高性能计算（HPC）社区的极高吞吐量环境。